CVE-2023-41232

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Sep 27, 2023

Updated: Nov 7, 2023

CWE ID 125

Summary

CVE-2023-41232 is a vulnerability affecting multiple Apple operating systems, including macOS Monterey, iOS, and iPadOS. This issue involved an out-of-bounds read that was mitigated with enhanced bounds checking. Unfortunately, this vulnerability could potentially enable an application to access kernel memory, posing a significant security risk. Patches have been released for macOS Ventura 13.6, iOS 16.7, and iPadOS 16.7, as well as macOS Monterey 12.7, addressing this concern.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apple (iPhone OS)
iPadOS
MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ssAoGw
https://www.cve.org/CVERecord?id=CVE-2023-41232
https://nvd.nist.gov/vuln/detail/CVE-2023-41232

Back to Vulnerability Database